15 Aug 2019

Lateral Phishing Attacks: A Growing Threat to the Enterprise

A new study by Barracuda sheds light on the rise of lateral phishing campaigns in which one or more compromised employee accounts in an organization are used to target other employees in the same organization. Lateral phishing is similar to business email compromise (BEC), but while the latter is usually

Read More
13 Aug 2019

Security warning for software developers: You are now prime targets for phishing attacks

A new report by Glasswall shows that nearly half of all phishing attacks target the technology sector, with software developers being the most likely targets. The main of phishing campaigns that target tech firms is usually theft of intellectual property. These attacks can be carried out on behalf of companies,

Read More
12 Aug 2019

Why remote workers are an underrated security risk for small businesses

A mere 4% of small businesses in the United States have fully adopted the cybersecurity best practices outlined by the US Small Business Administration (SBA), a new report by Nationwide found. Around 20% of small businesses in the survey did not train employees about cybersecurity at all. Most small business

Read More
12 Aug 2019

Phishing emails: Here’s why we are still getting caught out after all these years

New figures from Google help to explain why phishing attacks, which have been around for decades, are still a massive threat. Every day Google blocks over 100 millions phishing emails, about two-thirds (68%) of which are new campaigns. Phishing campaigns target users in certain sectors far more often than regular

Read More
07 Aug 2019

Ongoing Campaign Spoofs Walmart, Dating, Movie Sites

Threat actors have set up over 540 domains that closely resemble that of Walmart and a number of career, dating, and movie and TV websites, a security professional at DomainTools discovered. So far only 181 of the spoofed domains have been blacklisted, but this number will likely increase in the

Read More
05 Aug 2019

Nation-State APTs Target US Utilities With Dangerous Malware

Researchers with Proofpoint have uncovered various spearphishing campaigns that aim to infect US utility companies with a new kind of remote access trojan (RAT) dubbed LookBack. The spear phishing campaigns targeted three US utility firms between July 19 and 25. The researchers think the campaigns “may be the work of

Read More
01 Aug 2019

Capital One is not alone: 3.5B malicious login attacks target banks and customers

Between November 2017 to April 2019, threat actors carried out 3.5 billion malicious login attempts as part of credential stuffing attacks, in which credentials exposed in a data breach at one firm are used to gain access to accounts at another company. Akamai also identified close to 200,000 phishing domains

Read More
31 Jul 2019

Assessing the efficiency of phishing filters employed by email service providers

A new study conducted at the University of Plymouth underscores that spam filters in popular email providers are highly ineffective against phishing attacks. The researchers found that 75% of phishing emails without malicious links and 64% of those with links end up in the inbox of potential victims, while a

Read More
26 Jul 2019

Email persists as a major avenue for cyberattacks in 2019

While 63% of cybersecurity professionals believe that security at their organization has improved in the past year, the vast majority (85%) of organizations suffered an email-borne cyber incident last year, a recent survey by Barracuda Networks shows. In addition, one in two respondents reported rising stress levels. Targeted phishing attacks, known

Read More
25 Jul 2019

Cybercrime Costs Global Economy $2.9m Per Minute

Global losses to cybercrime total $1.5 trillion per year, which amounts to $2.9 million per minute, a new report by RiskIQ shows. Some of the largest companies are losing $25 each minute due to security breaches. Phishing campaigns accounts for losses of $17,700 per minute and ransomware attacks are expected to

Read More